<?php

class UsersController extends BackEndController
{
    /**
     * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
     * using two-column layout. See 'protected/views/layouts/column2.php'.
     */
    public $layout = '//layouts/column2';

    /**
     * @return array action filters
     */
    public function filters()
    {
        return array(
            'accessControl', // perform access control for CRUD operations
            'postOnly + delete', // we only allow deletion via POST request
        );
    }

    /**
     * Specifies the access control rules.
     * This method is used by the 'accessControl' filter.
     * @return array access control rules
     */
    public function accessRules()
    {
        return array(
            array(
                'allow', // allow all users to perform 'index' and 'view' actions
                'actions' => array('index', 'view', 'create', 'update', 'GetListJamaah', 'admin', 'delete'),
                'expression' => '$user->isHaveAccess()',),
            array(
                'allow', // allow authenticated user to perform 'create' and 'update' actions
                'actions' => array('Change'),
                'users' => array('@'),),
            array(
                'deny', // deny all users
                'users' => array('*'),),);
    }

    /**
     * Displays a particular model.
     *
     * @param integer $id the ID of the model to be displayed
     */
    public function actionView($id)
    {
        $this->render('view', array(
            'model' => $this->loadModel($id),));
    }

    public function actionGetListJamaah()
    {
        u::autoCompleteJamaah();
        Yii::app()->end();
    }

    /**
     * Creates a new model.
     * If creation is successful, the browser will be redirected to the 'view' page.
     */
    public function actionCreate()
    {
        $model = new Users;
        $model->user_pass = random_string(8, true);
        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);
        if (isset($_POST['Users'])) {
            $b = new bCrypt();
            $_POST['Users']['user_pass'] = $b->hash($_POST['Users']['user_pass']);
            $model->attributes = $_POST['Users'];
            if ($model->save()) {
                $this->redirect(array('view', 'id' => $model->id_user));
            }
        }
        $this->render('create', array(
            'model' => $model,));
    }

    /**
     * Updates a particular model.
     * If update is successful, the browser will be redirected to the 'view' page.
     *
     * @param integer $id the ID of the model to be updated
     */
    public function actionUpdate($id)
    {
        $model = $this->loadModel($id);
        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);
        if (isset($_POST['Users'])) {
            $model->attributes = $_POST['Users'];
            if ($model->save()) {
                $this->redirect(array('view', 'id' => $model->id_user));
            }
        }
        $this->render('update', array(
            'model' => $model,));
    }

    public function actionChange()
    {
        if (isset($_POST['currentPassword'])) {
            $id = user()->getid();
            $user = $this->loadModel($id);
            $b = new bCrypt();
            if ($b->verify($_POST['currentPassword'], $user->user_pass)) {
                if ($_POST['newPassword'] == '' || $_POST['repeatPassword'] == ''
                ) {
                    Yii::app()->user->setFlash('users', 'New password or repeat password can\'t blank.');
                } elseif ($_POST['newPassword'] != $_POST['repeatPassword']
                ) {
                    Yii::app()->user->setFlash('users', 'New password and repeat password must same.');
                } else {
                    $user->user_pass = $b->hash($_POST['newPassword']);
                    if ($user->save()) {
                        Yii::app()->user->setFlash('users',
                            'Your password has been changed <strong>successfully</strong>.');
                    }
                }
            } else {
                Yii::app()->user->setFlash('users',
                    'Your password was not changed because it did not matched the <strong>old password</strong>.');
            }
        }
        $this->render('change');
    }

    /**
     * Deletes a particular model.
     * If deletion is successful, the browser will be redirected to the 'admin' page.
     *
     * @param integer $id the ID of the model to be deleted
     */
    public function actionDelete($id)
    {
        $this->loadModel($id)->delete();
        // if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
        if (!isset($_GET['ajax'])) {
            $this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
        }
    }

    /**
     * Lists all models.
     */
    public function actionIndex()
    {
        $dataProvider = new CActiveDataProvider('Users');
        $this->render('index', array(
            'dataProvider' => $dataProvider,));
    }

    /**
     * Manages all models.
     */
    public function actionAdmin()
    {
        $model = new Users('search');
        $model->unsetAttributes(); // clear any default values
        if (isset($_GET['Users'])) {
            $model->attributes = $_GET['Users'];
        }
        $this->render('admin', array(
            'model' => $model,));
    }

    /**
     * Returns the data model based on the primary key given in the GET variable.
     * If the data model is not found, an HTTP exception will be raised.
     *
     * @param integer $id the ID of the model to be loaded
     *
     * @return Users the loaded model
     * @throws CHttpException
     */
    public function loadModel($id)
    {
        $model = Users::model()->findByPk($id);
        if ($model === null) {
            throw new CHttpException(404, 'The requested page does not exist.');
        }
        return $model;
    }

    /**
     * Performs the AJAX validation.
     *
     * @param Users $model the model to be validated
     */
    protected function performAjaxValidation($model)
    {
        if (isset($_POST['ajax']) && $_POST['ajax'] === 'users-form') {
            echo CActiveForm::validate($model);
            Yii::app()->end();
        }
    }
}
